Re: [Rd] virus and malicious code

From: Uwe Ligges <>
Date: Mon, 06 Aug 2012 15:39:06 +0200

On 06.08.2012 15:09, David L Lorenz wrote:
> Hi,

> A question has come up within a user group about the possibility of
> viruses or other malicious code being embedded within any package served
> from CRAN. How much checking is done to guard against this?

Of course, CRAN cannot guarantee that packages are free of malicious code, otherwise manual inspection of the code of almost 4000 packages with dozens of updates and new submissions a day would be necessary.

CRAN does some checks on the precompiled binaries for viruses, but again cannot give guarantees. Please use the normal precautions with downloaded executables.

Uwe Ligges

> I do not
> expect any kind of response about picking up R code from any other source,
> like gitHub. Thanks.

> Dave
> [[alternative HTML version deleted]]
> ______________________________________________
> mailing list
> mailing list Received on Mon 06 Aug 2012 - 13:42:28 GMT

This quarter's messages: by month, or sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

All messages

Archive maintained by Robert King, hosted by the discipline of statistics at the University of Newcastle, Australia.
Archive generated by hypermail 2.2.0, at Tue 07 Aug 2012 - 00:30:38 GMT.

Mailing list information is available at Please read the posting guide before posting to the list.

list of date sections of archive